::
1
All-in-One (Unified Threat Management, UTM) (VPN )
(Security Policy) (Packet Filter) (Authentication) (Logging , Monitor ,Report) (NAT) (Server Publish) (IDSVPN)
(who)(how) (what)
(Deny by Default): (Allow by Default):
2
(1/2) (Access Rules) (Authentication)
(2/2) (LoggingAlert and Monitor) (NATVirtual Server) IP
2
IP TCP/UDP ICMP TYPECODE TCP (URG/ACK/PSH/RST/SYN/FIN) IP IP Options
(Packet Filter)
(IP) (IP) (TCPUDPICMP) (InboundOutboundBoth) (AllowDeny)
(Packet Filtering)
Windows
Windows XP 1/3 1.
Windows XP 2/32. Windows
Windows XP 3/33. WindowsWindows
2
SYSLog Server SNMP Trap (syslog)
()
3
(Content Filter) (VPN)
(Content Filter)
(Application Content Filter)
HTTPWeb Content Filter Email Filter
HTTP (Keyword)URLURL HTTP MIME type HTTPGETPOSTHEADPUT Java Applet Active ActiveScriptingCookiesPopup
() (Attachment) SMTP(VRFY EXPN) ,(Masquerading) E-mail(Relay)
4
(Checklist) (Port scan) (Penetrate Test)
(Keep It Simple and concise) (Least privilege) (Defense in depth) (Minimal information)
, , :
http://dsa.dsc.com.tw/class/fire_wall/firewall_class1.asphttp://www.netfos.com.tw/reprint/fortinet.htm
http://eservice.seed.net.tw/class/class39.html
Top Related